EC-COUNCIL 312-50V8 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V8 Online Questions & Answers

• Question 241:

  A network admin contacts you. He is concerned that ARP spoofing or poisoning might occur on his network. What are some things he can do to prevent it? Select the best answers.

  A. Use port security on his switches.
  B. Use a tool like ARPwatch to monitor for strange ARP activity.
  C. Use a firewall between all LAN segments.
  D. If you have a small network,use static ARP entries.
  E. Use only static IP addresses on all PC's.
  A. Use port security on his switches.
  B. Use a tool like ARPwatch to monitor for strange ARP activity.
  D. If you have a small network,use static ARP entries.

• Question 242:

  What is the correct command to run Netcat on a server using port 56 that spawns command shell when connected?

  

  A. nc -port 56 -s cmd.exe
  B. nc -p 56 -p -e shell.exe
  C. nc -r 56 -c cmd.exe
  D. nc -L 56 -t -e cmd.exe
  D. nc -L 56 -t -e cmd.exe

• Question 243:

  You are the CIO for Avantes Finance International, a global finance company based in Geneva. You are responsible for network functions and logical security throughout the entire corporation. Your company has over 250 servers running Windows Server, 5000 workstations running Windows Vista, and 200 mobile users working from laptops on Windows 7.

  Last week, 10 of your company's laptops were stolen from salesmen while at a conference in Amsterdam. These laptops contained proprietary company information. While doing damage assessment on the possible public relations nightmare this may become, a news story leaks about the stolen laptops and also that sensitive information from those computers was posted to a blog online.

  What built-in Windows feature could you have implemented to protect the sensitive information on these laptops?

  A. You should have used 3DES which is built into Windows
  B. If you would have implemented Pretty Good Privacy (PGP) which is built into Windows,the sensitive information on the laptops would not have leaked out
  C. You should have utilized the built-in feature of Distributed File System (DFS) to protect the sensitive information on the laptops
  D. You could have implemented Encrypted File System (EFS) to encrypt the sensitive files on the laptops
  D. You could have implemented Encrypted File System (EFS) to encrypt the sensitive files on the laptops

• Question 244:

  Which of the following statements regarding ethical hacking is incorrect?

  A. Testing should be remotely performed offsite.
  B. Ethical hackers should never use tools that have potential of exploiting vulnerabilities in the organizations IT system.
  C. Ethical hacking should not involve writing to or modifying the target systems.
  D. An organization should use ethical hackers who do not sell hardware/software or other consulting services.
  B. Ethical hackers should never use tools that have potential of exploiting vulnerabilities in the organizations IT system.

• Question 245:

  A denial of Service (DoS) attack works on the following principle:

  A. MS-DOS and PC-DOS operating system utilize a weaknesses that can be compromised and permit them to launch an attack easily.
  B. All CLIENT systems have TCP/IP stack implementation weakness that can be compromised and permit them to lunch an attack easily.
  C. Overloaded buffer systems can easily address error conditions and respond appropriately.
  D. Host systems cannot respond to real traffic,if they have an overwhelming number of incomplete connections (SYN/RCVD State).
  E. A server stops accepting connections from certain networks one those network become flooded.
  D. Host systems cannot respond to real traffic,if they have an overwhelming number of incomplete connections (SYN/RCVD State).

• Question 246:

  Which of the following is an example of two factor authentication?

  A. PIN Number and Birth Date
  B. Username and Password
  C. Digital Certificate and Hardware Token
  D. Fingerprint and Smartcard ID
  D. Fingerprint and Smartcard ID

• Question 247:

  Which of the following statement correctly defines ICMP Flood Attack? (Select 2 answers)

  

  A. Bogus ECHO reply packets are flooded on the network spoofing the IP and MAC address
  B. The ICMP packets signal the victim system to reply and the combination of traffic saturates the bandwidth of the victim's network
  C. ECHO packets are flooded on the network saturating the bandwidth of the subnet causing denial of service
  D. A DDoS ICMP flood attack occurs when the zombies send large volumes of ICMP_ECHO_REPLY packets to the victim system.
  B. The ICMP packets signal the victim system to reply and the combination of traffic saturates the bandwidth of the victim's network
  D. A DDoS ICMP flood attack occurs when the zombies send large volumes of ICMP_ECHO_REPLY packets to the victim system.

• Question 248:

  ____________ will let you assume a users identity at a dynamically generated web page or site.

  A. SQL attack
  B. Injection attack
  C. Cross site scripting
  D. The shell attack
  E. Winzapper
  C. Cross site scripting

• Question 249:

  You are doing IP spoofing while you scan your target. You find that the target has port 23 open. Anyway you are unable to connect. Why?

  A. A firewall is blocking port 23
  B. You cannot spoof + TCP
  C. You need an automated telnet tool
  D. The OS does not reply to telnet even if port 23 is open
  A. A firewall is blocking port 23

• Question 250:

  As a securing consultant, what are some of the things you would recommend to a company to ensure DNS security? Select the best answers.

  A. Use the same machines for DNS and other applications
  B. Harden DNS servers
  C. Use split-horizon operation for DNS servers
  D. Restrict Zone transfers
  E. Have subnet diversity between DNS servers
  B. Harden DNS servers
  C. Use split-horizon operation for DNS servers
  D. Restrict Zone transfers
  E. Have subnet diversity between DNS servers